This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/4ef496-45e5-4397-a914-5989a4902d1a/1/TF6uvKJoThoeL-6VAxiiIrXGTDE.roa File: TF6uvKJoThoeL-6VAxiiIrXGTDE.roa (raw, json) Hash identifier: Z1iMOswxtKc687KzUW15WbR0/w7lrYl+AKo5ErE1KtI= Subject key identifier: 4C:5E:AE:BC:A2:68:4E:1A:1E:2F:EE:95:03:18:A2:22:B5:C6:4C:31 Certificate issuer: /CN=14fc1211ee3af657fc94f92fa0309de6c6c9406e Certificate serial: 019B79113C04D5B5DD76365C86FD0E7EF399 Authority key identifier: 14:FC:12:11:EE:3A:F6:57:FC:94:F9:2F:A0:30:9D:E6:C6:C9:40:6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FPwSEe469lf8lPkvoDCd5sbJQG4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/4ef496-45e5-4397-a914-5989a4902d1a/1/TF6uvKJoThoeL-6VAxiiIrXGTDE.roa Signing time: Thu 01 Jan 2026 10:18:51 +0000 ROA not before: Thu 01 Jan 2026 10:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50783 IP address blocks: 91.214.20.0/22 maxlen: 24 193.3.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/4ef496-45e5-4397-a914-5989a4902d1a/1/FPwSEe469lf8lPkvoDCd5sbJQG4.crl rsync://rpki.ripe.net/repository/DEFAULT/07/4ef496-45e5-4397-a914-5989a4902d1a/1/FPwSEe469lf8lPkvoDCd5sbJQG4.mft rsync://rpki.ripe.net/repository/DEFAULT/FPwSEe469lf8lPkvoDCd5sbJQG4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3c:04:d5:b5:dd:76:36:5c:86:fd:0e:7e:f3:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14fc1211ee3af657fc94f92fa0309de6c6c9406e Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4c5eaebca2684e1a1e2fee950318a222b5c64c31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:23:f9:64:2a:8a:96:20:c7:58:e4:1d:b6:f1: 37:85:53:fc:b4:36:c5:f4:30:ce:26:84:f8:d7:86: 26:70:a1:3d:d6:78:aa:11:33:e0:18:d8:5f:b8:5a: a1:7e:62:4b:b4:94:4e:ac:3b:83:0c:23:fe:ce:5a: 23:1a:0a:17:b6:ec:20:94:ac:a9:a3:fd:34:aa:8f: 49:71:b8:ae:34:67:83:0d:c0:95:62:1d:a1:24:43: e5:91:65:c9:86:54:77:f4:e1:e2:79:81:96:41:81: 9a:cb:61:bf:fb:25:63:be:f6:ad:13:39:1d:c5:60: 84:c8:b5:4b:b7:ec:fb:7c:0f:be:d2:6a:eb:3b:9c: ab:b2:7b:d5:bc:64:6e:0b:84:65:41:f9:33:66:ff: a1:ff:74:8a:10:b8:60:6f:de:8d:93:c2:52:5d:16: de:fb:11:e3:8d:a8:b2:55:68:a4:d2:73:4f:f6:ea: 94:cf:e9:68:48:24:07:b2:31:67:89:1a:c4:50:ff: 49:12:b4:44:df:83:82:1f:e8:06:65:1b:e2:aa:49: 4a:0a:27:ca:cd:54:51:bc:98:b3:87:a3:17:cf:d9: 95:8a:92:47:17:3a:4d:05:11:c0:a6:da:41:71:74: 46:64:1d:69:60:e9:e9:32:b4:d6:2b:9b:4d:a9:f8: aa:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5E:AE:BC:A2:68:4E:1A:1E:2F:EE:95:03:18:A2:22:B5:C6:4C:31 X509v3 Authority Key Identifier: keyid:14:FC:12:11:EE:3A:F6:57:FC:94:F9:2F:A0:30:9D:E6:C6:C9:40:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FPwSEe469lf8lPkvoDCd5sbJQG4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/4ef496-45e5-4397-a914-5989a4902d1a/1/TF6uvKJoThoeL-6VAxiiIrXGTDE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/4ef496-45e5-4397-a914-5989a4902d1a/1/FPwSEe469lf8lPkvoDCd5sbJQG4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.214.20.0/22 193.3.49.0/24 Signature Algorithm: sha256WithRSAEncryption 91:73:96:d1:85:f5:1f:2b:45:2e:59:e9:22:d3:7f:09:74:41: 1f:ef:61:b0:e3:09:6f:13:64:71:f1:d3:16:e9:82:ae:63:35: 55:16:b3:1c:0e:3b:c0:e1:98:b8:b3:94:49:96:3e:af:b0:8b: be:3f:ad:87:72:c1:95:7c:e6:97:bd:c9:1c:a8:50:cd:f9:4b: 23:75:e8:e3:0e:c1:74:f5:60:11:4a:72:ee:49:0b:b1:95:63: fd:96:db:f0:d6:18:f1:a5:08:fb:93:d1:31:90:db:64:65:ca: 11:66:ea:41:ac:24:9a:63:57:16:1e:4b:bc:08:39:9f:99:bc: 40:23:2a:00:2f:24:56:3b:7e:f4:67:56:4a:27:c6:69:ba:17: 3d:03:b4:ca:8a:44:c2:17:27:6f:2a:8f:30:de:18:41:74:3c: 08:fb:1b:74:f7:6f:48:ca:f2:76:ed:3f:11:b1:cb:2f:01:77: 15:7f:66:c8:ca:71:18:26:ca:c7:ef:43:9c:da:70:a2:13:7b: be:13:4a:f1:2a:47:8c:53:d3:f4:81:99:ec:6f:67:c5:ad:db: f2:1c:d4:dc:c3:65:2d:83:19:da:4f:6c:f4:5c:3e:59:c8:86: 27:2b:a3:bc:0b:bc:60:ac:4a:2b:94:2e:e2:a2:06:a4:5c:ff: 18:70:10:ca -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5ETwE1bXddjZchv0OfvOZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0ZmMxMjExZWUzYWY2NTdmYzk0ZjkyZmEwMzA5ZGU2YzZj OTQwNmUwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YzVlYWViY2EyNjg0ZTFhMWUyZmVlOTUwMzE4YTIyMmI1YzY0YzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCP5ZCqKliDHWOQdtvE3hVP8tDbF 9DDOJoT414YmcKE91niqETPgGNhfuFqhfmJLtJROrDuDDCP+zlojGgoXtuwglKyp o/00qo9JcbiuNGeDDcCVYh2hJEPlkWXJhlR39OHieYGWQYGay2G/+yVjvvatEzkd xWCEyLVLt+z7fA++0mrrO5yrsnvVvGRuC4RlQfkzZv+h/3SKELhgb96Nk8JSXRbe +xHjjaiyVWik0nNP9uqUz+loSCQHsjFniRrEUP9JErRE34OCH+gGZRviqklKCifK zVRRvJizh6MXz9mVipJHFzpNBRHAptpBcXRGZB1pYOnpMrTWK5tNqfiqWQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFExerryiaE4aHi/ulQMYoiK1xkwxMB8GA1UdIwQY MBaAFBT8EhHuOvZX/JT5L6AwnebGyUBuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRlB3U0VlNDY5bGY4bFBrdm9EQ2Q1c2JKUUc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy80ZWY0OTYtNDVlNS00Mzk3LWE5MTQt NTk4OWE0OTAyZDFhLzEvVEY2dXZLSm9UaG9lTC02VkF4aWlJclhHVERFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy80ZWY0OTYtNDVlNS00Mzk3LWE5MTQtNTk4OWE0OTAyZDFh LzEvRlB3U0VlNDY5bGY4bFBrdm9EQ2Q1c2JKUUc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW9YUAwQA wQMxMA0GCSqGSIb3DQEBCwUAA4IBAQCRc5bRhfUfK0UuWeki038JdEEf72Gw4wlv E2Rx8dMW6YKuYzVVFrMcDjvA4Zi4s5RJlj6vsIu+P62HcsGVfOaXvckcqFDN+Usj dejjDsF09WARSnLuSQuxlWP9ltvw1hjxpQj7k9ExkNtkZcoRZupBrCSaY1cWHku8 CDmfmbxAIyoALyRWO370Z1ZKJ8Zpuhc9A7TKikTCFydvKo8w3hhBdDwI+xt0929I yvJ27T8RscsvAXcVf2bIynEYJsrH70Oc2nCiE3u+E0rxKkeMU9P0gZnsb2fFrdvy HNTcw2UtgxnaT2z0XD5ZyIYnK6O8C7xgrEorlC7iogakXP8YcBDK -----END CERTIFICATE-----Generated at Tue Feb 10 04:28:11 2026 by rpki-client